Rha7 Downloads CVE-2007-2107 SQL-Injection Vulnerability

Rha7 Downloads CVE-2007-2107 SQL-Injection Vulnerability

Rha7 Downloads is prone to a sql-injection vulnerability. SQL injection vulnerability in visit.php in the Rha7 Downloads (rha7downloads) 1.0 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter, a different vector than CVE-2007-1960. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.